The identity of the assembly specified in the /asm:assembly/asm:assemblyIdentity node of the manifest does not match the identity of the assembly in the Authenticode signature in the /asm:assembly/ds:signature/ds:KeyInfo/msrel:RelData/r:license/r:grant/as:ManifestInformation/as:assemblyIdentity node.

BadDigest

The digital signature of the object did not verify.

BadSignatureFormat

The signature format is invalid.

BasicConstraintsNotObserved

The basic constraint extension of a certificate has not been observed.

CertificateExpired

The certificate has expired.

CertificateExplicitlyDistrusted

The certificate was explicitly marked as not trusted by the user.

CertificateMalformed

The certificate is missing or has an empty value for an important field, such as a subject or issuer name.

CertificateNotExplicitlyTrusted

The certificate is not trusted explicitly.

CertificateRevoked

The certificate has been revoked.

CertificateUsageNotAllowed

The certificate cannot be used for signing and verification.

ContainingSignatureInvalid

The strong name signature does not verify in the AuthenticodeSignatureInformation object. Because the strong name signature wraps the Authenticode signature, someone could replace the Authenticode signature with a signature of their choosing. To prevent this, this error code is returned if the strong name does not verify because substituting a part of the strong name signature will invalidate it.

CouldNotBuildChain

The chain could not be built.

GenericTrustFailure

There is a general trust failure with the certificate.

InvalidCertificateName

The certificate has an invalid name. The name is either not included in the permitted list or is explicitly excluded.

InvalidCertificatePolicy

The certificate has an invalid policy.

InvalidCertificateRole

The certificate has an invalid role.

InvalidCertificateSignature

The signature of the certificate cannot be verified.

InvalidCertificateUsage

The certificate has an invalid usage.

InvalidCountersignature

One of the counter signatures is invalid.

InvalidSignerCertificate

The certificate for the signer of the message is invalid or not found.

InvalidTimePeriodNesting

A certificate was issued after the issuing certificate has expired.

InvalidTimestamp

The time stamp signature or certificate could not be verified or is malformed.

IssuerChainingError

A parent of a given certificate did not issue that child certificate.

MissingSignature

The signature is missing.

PathLengthConstraintViolated

A path length constraint in the certification chain has been violated.

PublicKeyTokenMismatch

The public key token from the manifest identity in the /asm:assembly/asm:AssemblyIdentity node does not match the public key token of the key that is used to sign the manifest.

PublisherMismatch

The publisher name from /asm:assembly/asmv2:publisherIdentity does not match the subject name of the signing certificate, or the issuer key hash from the same publisherIdentity node does not match the key hash of the signing certificate.

RevocationCheckFailure

The revocation check failed.

SystemError

A system-level error occurred while verifying trust.

UnknownCriticalExtension

A certificate contains an unknown extension that is marked critical.

UnknownTrustProvider

The certificate has an unknown trust provider.

UnknownVerificationAction

The certificate has an unknown verification action.

UntrustedCertificationAuthority

The certification chain processed correctly, but one of the CA certificates is not trusted by the policy provider.

HRESULT values are generally returned by the unmanaged Microsoft Cryptographic API (CAPI); the other values are set by managed verification. This enumeration is not comprehensive of all possible HRESULT values and is subject to change.